Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
File: 001KO3R_ynAQOxfz29xQRcrOMt8.mft (raw, json)
Hash identifier: TcpssEdn1JqM8VtsukT4jp1yDKXla05rFuYSImMLl6o=
Subject key identifier: 9F:37:1E:3F:45:D8:1E:E0:08:94:74:E7:9E:D2:17:B5:09:57:3E:BB
Authority key identifier: D3:4D:4A:3B:74:7F:CA:70:10:3B:17:F3:DB:DC:50:45:CA:CE:32:DF
Certificate issuer: /CN=d34d4a3b747fca70103b17f3dbdc5045cace32df
Certificate serial: 0196DA0A815F88974646222348DD1099016C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/001KO3R_ynAQOxfz29xQRcrOMt8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
Manifest number: 1544
Signing time: Fri 16 May 2025 17:00:43 +0000
Manifest this update: Fri 16 May 2025 17:00:43 +0000
Manifest next update: Sat 17 May 2025 17:00:43 +0000
Files and hashes: 1: 001KO3R_ynAQOxfz29xQRcrOMt8.crl (hash: lA3/6MBKl8efVdVJCLszh8HO3TBZ0VnBZFLydzFV0Iw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
rsync://rpki.ripe.net/repository/DEFAULT/001KO3R_ynAQOxfz29xQRcrOMt8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 17 May 2025 17:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:da:0a:81:5f:88:97:46:46:22:23:48:dd:10:99:01:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d34d4a3b747fca70103b17f3dbdc5045cace32df
Validity
Not Before: May 16 17:00:43 2025 GMT
Not After : May 17 17:00:43 2025 GMT
Subject: CN=9f371e3f45d81ee0089474e79ed217b509573ebb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:d0:5f:3e:bf:9e:3b:67:1c:af:46:c2:47:d9:
6e:d6:09:ae:23:69:28:19:d9:70:2a:68:58:b8:a9:
f3:55:42:4e:e6:9a:26:c9:7a:a8:24:aa:f8:e3:ec:
0a:bd:cb:f7:38:00:4c:b9:07:05:e3:3b:f2:80:69:
5f:81:d5:45:d8:4d:23:ba:0f:5f:37:bc:3a:c6:30:
ea:00:7b:c4:69:84:29:36:98:6c:44:e7:b4:1c:b3:
13:08:33:7e:07:b3:f0:6b:b1:f0:d3:d6:94:5d:05:
02:44:d6:93:fc:5a:c8:bb:11:dc:b9:2b:7a:5a:c7:
8d:63:a2:7d:28:4a:52:e4:e3:1d:cf:79:49:33:05:
cd:5e:70:33:b1:48:45:21:2c:30:f3:69:71:d6:30:
c0:37:bb:1f:87:1b:58:05:f3:e7:23:b7:42:76:4e:
d6:c4:a8:fe:c3:9b:9f:58:eb:bf:94:e9:37:0d:89:
3a:6c:fc:22:1b:c8:95:f4:35:b8:20:f3:d9:56:2c:
3d:af:0a:dd:98:7d:2e:86:d0:35:67:53:5e:b5:b9:
94:5d:b5:a2:8e:3c:3d:97:0a:1f:cf:19:49:18:d3:
e8:e9:3f:b2:ca:a3:2f:cb:2a:b9:8d:a5:25:dc:e0:
b0:46:08:99:1a:25:0a:1c:86:0b:0e:4d:66:cf:f6:
d7:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:37:1E:3F:45:D8:1E:E0:08:94:74:E7:9E:D2:17:B5:09:57:3E:BB
X509v3 Authority Key Identifier:
keyid:D3:4D:4A:3B:74:7F:CA:70:10:3B:17:F3:DB:DC:50:45:CA:CE:32:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/001KO3R_ynAQOxfz29xQRcrOMt8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:d8:7f:4e:be:6d:ec:8f:7c:aa:e1:95:b0:23:05:48:73:8e:
28:a6:24:2e:49:27:9f:a0:44:00:ce:06:6b:61:a1:1b:ee:c5:
8a:1e:68:52:5e:f1:5b:4c:9c:22:84:07:99:38:93:d7:c6:96:
ab:f6:27:c3:35:62:e4:af:30:4e:cd:25:90:ae:d2:cb:62:a0:
df:fa:d0:3a:f6:8c:58:31:79:02:32:a0:0d:d6:0f:e2:9c:ae:
66:83:e9:d6:34:3d:79:02:28:1c:3a:97:0d:1d:1a:dd:dd:81:
7f:3c:37:8e:44:b7:d9:10:27:db:83:7f:04:8c:72:73:6c:b5:
83:07:f5:0f:04:28:d5:a3:7d:98:80:c6:d5:b6:41:63:8d:ec:
2e:75:bf:3a:49:ad:27:59:0d:ef:bb:9a:1d:0e:f1:00:ba:0c:
2b:56:b8:58:92:0e:e7:6e:ec:a9:c8:8d:cc:e2:d0:38:33:69:
08:53:58:b5:d3:92:c6:a1:4a:44:b3:35:d0:b4:6e:21:f0:f1:
6a:03:c3:2d:38:47:e2:90:ca:3c:cb:ce:83:27:a0:f7:f7:db:
40:13:41:70:c3:ac:3a:8e:57:44:50:c9:92:5e:42:44:55:32:
da:4a:83:39:38:53:bd:5e:ee:54:45:f4:65:87:de:95:c4:c0:
2a:3b:cb:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 16 23:23:55 2025 by rpki-client